Rechercher
Contactez-nous Suivez-nous sur Twitter En francais English Language
 











Freely subscribe to our NEWSLETTER

Newsletter FR

Newsletter EN

Vulnérabilités

Unsubscribe

Vigil@nce - Cisco ASA: denial of service via TCP

June 2017 by Vigil@nce

This bulletin was written by Vigil@nce : https://vigilance.fr/offer

SYNTHESIS OF THE VULNERABILITY

An attacker can send unordered TCP packets of specially chosen
sizes to a device running Cisco ASA, in order to trigger a denial
of service.

Impacted products: ASA.

Severity: 2/4.

Creation date: 20/04/2017.

DESCRIPTION OF THE VULNERABILITY

The Cisco ASA product implements quota management for TCP packet
reordering.

However, for some packet sizes, an error in the memory management
leads to memory exhaustion.

An attacker can therefore send unordered TCP packets of specially
chosen sizes to a device running Cisco ASA, in order to trigger a
denial of service.

ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN

https://vigilance.fr/vulnerability/Cisco-ASA-denial-of-service-via-TCP-22514


See previous articles

    

See next articles












Your podcast Here

New, you can have your Podcast here. Contact us for more information ask:
Marc Brami
Phone: +33 1 40 92 05 55
Mail: ipsimp@free.fr

All new podcasts